[edward.git] / edward-bot

#! /usr/bin/env python3

"""*********************************************************************
* Edward is free software: you can redistribute it and/or modify       *
* it under the terms of the GNU Affero Public License as published by  *
* the Free Software Foundation, either version 3 of the License, or    *
* (at your option) any later version.                                  *
*                                                                      *
* Edward is distributed in the hope that it will be useful,            *
* but WITHOUT ANY WARRANTY; without even the implied warranty of       *
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
* GNU Affero Public License for more details.                          *
*                                                                      *
* You should have received a copy of the GNU Affero Public License     *
* along with Edward.  If not, see <http://www.gnu.org/licenses/>.      *
*                                                                      *
* Copyright (C) 2014-2015 Andrew Engelbrecht                (AGPLv3+)  *
* Copyright (C) 2014      Josh Drake                        (AGPLv3+)  *
* Copyright (C) 2014      Lisa Marie Maginnis               (AGPLv3+)  *
*                                                                      *
* Special thanks to Josh Drake for writing the original edward bot! :) *
*                                                                      *
************************************************************************

Code used from:

* http://agpl.fsf.org/emailselfdefense.fsf.org/edward/CURRENT/edward.tar.gz

"""

import sys
import email.parser
import gpgme
import re
import io
import time


def main ():

    handle_args()

    email_text = sys.stdin.read()

    email_from, email_subject = email_from_subject(email_text)

    plaintext, keys = email_decode_flatten (email_text)
    encrypt_to_key = choose_reply_encryption_key(keys)

    reply_message = generate_reply(plaintext, email_from, \
                                   email_subject, encrypt_to_key,
                                   "DAB4F989E2788B8DF058E0EFEF1EC52039B36E58")

    print(reply_message)


def email_decode_flatten (email_text):

    body = ""
    keys = []

    email_struct = email.parser.Parser().parsestr(email_text)

    for subpart in email_struct.walk():

        payload, description, filename, content_type \
                = get_email_subpart_info(subpart)

        if payload == "":
            continue

        if content_type == "multipart":
            continue

        if content_type == "application/pgp-encrypted":
            if description == "PGP/MIME version identification":
                if payload.strip() != "Version: 1":
                    print(progname + ": Warning: unknown " \
                            + description + ": " \
                            + payload.strip(), file=sys.stderr)
            continue


        if (filename == "encrypted.asc") or (content_type == "pgp/mime"):
            plaintext, more_keys = decrypt_text(payload)

            body += plaintext
            keys += more_keys

        elif content_type == "text/plain":
            body += payload + "\n"

        else:
            body += payload + "\n"

    return body, keys


def email_from_subject (email_text):

    email_struct = email.parser.Parser().parsestr(email_text)

    email_from      = email_struct['From']
    email_subject   = email_struct['Subject']

    return email_from, email_subject


def get_email_subpart_info (part):

    charset             = part.get_content_charset()
    payload_bytes       = part.get_payload(decode=True)

    filename            = part.get_filename()
    content_type        = part.get_content_type()
    description_list    = part.get_params(header='content-description')

    if charset == None:
        charset = 'utf-8'

    if payload_bytes != None:
        payload = payload_bytes.decode(charset)
    else:
        payload = ""

    if description_list != None:
        description = description_list[0][0]
    else:
        description = ""

    return payload, description, filename, content_type


def decrypt_text (gpg_text):

    body = ""
    keys = []

    gpg_chunks = split_message(gpg_text)

    plaintext_and_sigs_chunks = decrypt_chunks(gpg_chunks)

    for chunk in plaintext_and_sigs_chunks:
        plaintext   = chunk[0]
        sigs        = chunk[1]

        for sig in sigs:
            key = get_pub_key(sig)
            keys += [key]

        # recursive for nested layers of mime and/or gpg
        plaintext, more_keys = email_decode_flatten(plaintext)

        body += plaintext
        keys += more_keys

    return body, keys


def get_pub_key (sig):

    gpgme_ctx = gpgme.Context()

    fingerprint = sig.fpr
    key = gpgme_ctx.get_key(fingerprint)

    return key


def split_message (text):

    gpg_matches = re.search( \
            '(-----BEGIN PGP MESSAGE-----' + \
            '.*' + \
            '-----END PGP MESSAGE-----)', \
            text, \
            flags=re.DOTALL)

    if gpg_matches != None:
        gpg_chunks = gpg_matches.groups()
    else:
        gpg_chunks = ()

    return gpg_chunks


def decrypt_chunks (gpg_chunks):

    return map(decrypt_chunk, gpg_chunks)


def decrypt_chunk (gpg_chunk):

    gpgme_ctx = gpgme.Context()

    chunk_b = io.BytesIO(gpg_chunk.encode('ASCII'))
    plain_b = io.BytesIO()

    sigs = gpgme_ctx.decrypt_verify(chunk_b, plain_b)

    plaintext = plain_b.getvalue().decode('ASCII')
    return (plaintext, sigs)


def choose_reply_encryption_key (keys):

    reply_key = None
    for key in keys:
        if (key.can_encrypt == True):
            reply_key = key
            break

    return key


def generate_reply (plaintext, email_from, email_subject, encrypt_to_key,
                    sign_with_fingerprint):

    plaintext_reply  = "thanks for the message!\n\n\n"
    plaintext_reply += email_quote_text(plaintext)

    encrypted_reply = encrypt_sign_message(plaintext_reply, encrypt_to_key,
                                           sign_with_fingerprint)

    reply  = "To: " + email_from + "\n"
    reply += "Subject: " + email_subject + "\n"
    reply += "\n"
    reply += encrypted_reply

    return reply


def email_quote_text (text):

    quoted_message = re.sub(r'^', r'> ', text, flags=re.MULTILINE)

    return quoted_message


def encrypt_sign_message (plaintext, encrypt_to_key, sign_with_fingerprint):

    gpgme_ctx = gpgme.Context()
    gpgme_ctx.armor = True

    sign_with_key = gpgme_ctx.get_key(sign_with_fingerprint)
    gpgme_ctx.signers = [sign_with_key]

    plaintext_bytes = io.BytesIO(plaintext.encode('UTF-8'))
    encrypted_bytes = io.BytesIO()

    gpgme_ctx.encrypt_sign([encrypt_to_key], gpgme.ENCRYPT_ALWAYS_TRUST,
            plaintext_bytes, encrypted_bytes)

    encrypted_txt = encrypted_bytes.getvalue().decode('ASCII')
    return encrypted_txt


def handle_args ():
    if __name__ == "__main__":

        global progname
        progname = sys.argv[0]

        if len(sys.argv) > 1:
            print(progname + ": error, this program doesn't " \
                    "need any arguments.", file=sys.stderr)
            exit(1)


main()
Commit	Line	Data
0bec96d6 AE	1	#! /usr/bin/env python3
	2
	3	"""*********************************************************************
	4	* Edward is free software: you can redistribute it and/or modify *
	5	* it under the terms of the GNU Affero Public License as published by *
	6	* the Free Software Foundation, either version 3 of the License, or *
	7	* (at your option) any later version. *
	8	* *
	9	* Edward is distributed in the hope that it will be useful, *
	10	* but WITHOUT ANY WARRANTY; without even the implied warranty of *
	11	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
	12	* GNU Affero Public License for more details. *
	13	* *
	14	* You should have received a copy of the GNU Affero Public License *
	15	* along with Edward. If not, see <http://www.gnu.org/licenses/>. *
	16	* *
	17	* Copyright (C) 2014-2015 Andrew Engelbrecht (AGPLv3+) *
	18	* Copyright (C) 2014 Josh Drake (AGPLv3+) *
	19	* Copyright (C) 2014 Lisa Marie Maginnis (AGPLv3+) *
	20	* *
	21	* Special thanks to Josh Drake for writing the original edward bot! :) *
	22	* *
	23	************************************************************************
	24
	25	Code used from:
	26
	27	* http://agpl.fsf.org/emailselfdefense.fsf.org/edward/CURRENT/edward.tar.gz
	28
	29	"""
	30
	31	import sys
	32	import email.parser
	33	import gpgme
	34	import re
	35	import io
	36	import time
	37
c96f3837	38
0bec96d6 AE	39	def main ():
0bec96d6 AE	40
20f6e7c5	41	handle_args()
0bec96d6	42
c96f3837	43	email_text = sys.stdin.read()
c96f3837	44
65ed3800 AE	45	email_from, email_subject = email_from_subject(email_text)
65ed3800 AE	46
1da9b527 AE	47	plaintext, keys = email_decode_flatten (email_text)
1da9b527 AE	48	encrypt_to_key = choose_reply_encryption_key(keys)
fafa21c3	49
1da9b527	50	reply_message = generate_reply(plaintext, email_from, \
897cbaf6 AE	51	email_subject, encrypt_to_key,
897cbaf6 AE	52	"DAB4F989E2788B8DF058E0EFEF1EC52039B36E58")
c96f3837	53
1da9b527	54	print(reply_message)
c96f3837	55
0bec96d6	56
7b06b980	57	def email_decode_flatten (email_text):
0bec96d6	58
86663388	59	body = ""
394a1476 AE	60	keys = []
	61
	62	email_struct = email.parser.Parser().parsestr(email_text)
	63
	64	for subpart in email_struct.walk():
8bb4b0d5	65
394a1476 AE	66	payload, description, filename, content_type \
394a1476 AE	67	= get_email_subpart_info(subpart)
0bec96d6	68
394a1476	69	if payload == "":
8bb4b0d5	70	continue
0bec96d6	71
394a1476	72	if content_type == "multipart":
d437f8b2	73	continue
0bec96d6	74
394a1476 AE	75	if content_type == "application/pgp-encrypted":
394a1476 AE	76	if description == "PGP/MIME version identification":
8bb4b0d5	77	if payload.strip() != "Version: 1":
394a1476 AE	78	print(progname + ": Warning: unknown " \
394a1476 AE	79	+ description + ": " \
20f6e7c5	80	+ payload.strip(), file=sys.stderr)
8bb4b0d5 AE	81	continue
8bb4b0d5 AE	82
d437f8b2	83
394a1476 AE	84	if (filename == "encrypted.asc") or (content_type == "pgp/mime"):
394a1476 AE	85	plaintext, more_keys = decrypt_text(payload)
0bec96d6	86
394a1476 AE	87	body += plaintext
	88	keys += more_keys
	89
	90	elif content_type == "text/plain":
86663388	91	body += payload + "\n"
0bec96d6	92
8bb4b0d5	93	else:
86663388 AE	94	body += payload + "\n"
86663388 AE	95
394a1476	96	return body, keys
86663388	97
c96f3837	98
65ed3800	99	def email_from_subject (email_text):
d437f8b2	100
394a1476	101	email_struct = email.parser.Parser().parsestr(email_text)
d437f8b2	102
394a1476 AE	103	email_from = email_struct['From']
394a1476 AE	104	email_subject = email_struct['Subject']
d437f8b2	105
394a1476	106	return email_from, email_subject
d437f8b2	107
d437f8b2	108
394a1476	109	def get_email_subpart_info (part):
d437f8b2	110
394a1476 AE	111	charset = part.get_content_charset()
394a1476 AE	112	payload_bytes = part.get_payload(decode=True)
d437f8b2	113
394a1476 AE	114	filename = part.get_filename()
	115	content_type = part.get_content_type()
	116	description_list = part.get_params(header='content-description')
d437f8b2	117
394a1476 AE	118	if charset == None:
394a1476 AE	119	charset = 'utf-8'
0bec96d6	120
394a1476 AE	121	if payload_bytes != None:
	122	payload = payload_bytes.decode(charset)
	123	else:
	124	payload = ""
0bec96d6	125
394a1476 AE	126	if description_list != None:
	127	description = description_list[0][0]
	128	else:
	129	description = ""
0bec96d6	130
394a1476	131	return payload, description, filename, content_type
0bec96d6	132
0bec96d6	133
394a1476	134	def decrypt_text (gpg_text):
86663388	135
394a1476 AE	136	body = ""
394a1476 AE	137	keys = []
0bec96d6	138
394a1476	139	gpg_chunks = split_message(gpg_text)
86663388	140
394a1476	141	plaintext_and_sigs_chunks = decrypt_chunks(gpg_chunks)
0bec96d6	142
394a1476 AE	143	for chunk in plaintext_and_sigs_chunks:
	144	plaintext = chunk[0]
	145	sigs = chunk[1]
9eb78301	146
394a1476 AE	147	for sig in sigs:
	148	key = get_pub_key(sig)
	149	keys += [key]
0bec96d6	150
394a1476	151	# recursive for nested layers of mime and/or gpg
7b06b980	152	plaintext, more_keys = email_decode_flatten(plaintext)
8bb4b0d5	153
394a1476 AE	154	body += plaintext
394a1476 AE	155	keys += more_keys
8bb4b0d5	156
394a1476	157	return body, keys
8bb4b0d5	158
8bb4b0d5	159
394a1476	160	def get_pub_key (sig):
16da8026	161
394a1476	162	gpgme_ctx = gpgme.Context()
9eb78301	163
7b06b980 AE	164	fingerprint = sig.fpr
7b06b980 AE	165	key = gpgme_ctx.get_key(fingerprint)
0bec96d6	166
394a1476	167	return key
0bec96d6 AE	168
	169
	170	def split_message (text):
	171
7b06b980	172	gpg_matches = re.search( \
394a1476 AE	173	'(-----BEGIN PGP MESSAGE-----' + \
394a1476 AE	174	'.*' + \
0bec96d6 AE	175	'-----END PGP MESSAGE-----)', \
0bec96d6 AE	176	text, \
f31ffe2f	177	flags=re.DOTALL)
0bec96d6	178
7b06b980 AE	179	if gpg_matches != None:
7b06b980 AE	180	gpg_chunks = gpg_matches.groups()
0bec96d6	181	else:
7b06b980 AE	182	gpg_chunks = ()
	183
	184	return gpg_chunks
0bec96d6 AE	185
0bec96d6 AE	186
394a1476	187	def decrypt_chunks (gpg_chunks):
0bec96d6	188
6f6f3fb0	189	return map(decrypt_chunk, gpg_chunks)
0bec96d6	190
0bec96d6	191
394a1476	192	def decrypt_chunk (gpg_chunk):
0bec96d6	193
394a1476	194	gpgme_ctx = gpgme.Context()
0bec96d6	195
394a1476	196	chunk_b = io.BytesIO(gpg_chunk.encode('ASCII'))
0bec96d6 AE	197	plain_b = io.BytesIO()
0bec96d6 AE	198
394a1476	199	sigs = gpgme_ctx.decrypt_verify(chunk_b, plain_b)
0bec96d6	200
394a1476 AE	201	plaintext = plain_b.getvalue().decode('ASCII')
394a1476 AE	202	return (plaintext, sigs)
0bec96d6 AE	203
0bec96d6 AE	204
fafa21c3 AE	205	def choose_reply_encryption_key (keys):
	206
	207	reply_key = None
	208	for key in keys:
	209	if (key.can_encrypt == True):
	210	reply_key = key
	211	break
	212
	213	return key
	214
	215
897cbaf6 AE	216	def generate_reply (plaintext, email_from, email_subject, encrypt_to_key,
897cbaf6 AE	217	sign_with_fingerprint):
1da9b527	218
f87041f8 AE	219	plaintext_reply = "thanks for the message!\n\n\n"
f87041f8 AE	220	plaintext_reply += email_quote_text(plaintext)
1da9b527	221
897cbaf6 AE	222	encrypted_reply = encrypt_sign_message(plaintext_reply, encrypt_to_key,
897cbaf6 AE	223	sign_with_fingerprint)
1da9b527 AE	224
	225	reply = "To: " + email_from + "\n"
	226	reply += "Subject: " + email_subject + "\n"
f87041f8	227	reply += "\n"
1da9b527 AE	228	reply += encrypted_reply
	229
	230	return reply
	231
	232
f87041f8 AE	233	def email_quote_text (text):
	234
	235	quoted_message = re.sub(r'^', r'> ', text, flags=re.MULTILINE)
	236
	237	return quoted_message
	238
	239
897cbaf6	240	def encrypt_sign_message (plaintext, encrypt_to_key, sign_with_fingerprint):
1da9b527 AE	241
	242	gpgme_ctx = gpgme.Context()
	243	gpgme_ctx.armor = True
	244
897cbaf6 AE	245	sign_with_key = gpgme_ctx.get_key(sign_with_fingerprint)
	246	gpgme_ctx.signers = [sign_with_key]
	247
1da9b527 AE	248	plaintext_bytes = io.BytesIO(plaintext.encode('UTF-8'))
	249	encrypted_bytes = io.BytesIO()
	250
897cbaf6	251	gpgme_ctx.encrypt_sign([encrypt_to_key], gpgme.ENCRYPT_ALWAYS_TRUST,
1da9b527 AE	252	plaintext_bytes, encrypted_bytes)
	253
	254	encrypted_txt = encrypted_bytes.getvalue().decode('ASCII')
	255	return encrypted_txt
	256
	257
20f6e7c5 AE	258	def handle_args ():
	259	if __name__ == "__main__":
	260
	261	global progname
	262	progname = sys.argv[0]
	263
	264	if len(sys.argv) > 1:
	265	print(progname + ": error, this program doesn't " \
	266	"need any arguments.", file=sys.stderr)
	267	exit(1)
	268
	269
0bec96d6 AE	270	main()
0bec96d6 AE	271